VYPR
Unrated severityNVD Advisory· Published Oct 16, 2023· Updated Apr 23, 2025

Active Directory Integration < 4.1.10 - Unauthenticated Log Disclosure

CVE-2023-5003

Description

The Active Directory Integration / LDAP Integration WordPress plugin before 4.1.10 stores sensitive LDAP logs in a buffer file when an administrator wants to export said logs. Unfortunately, this log file is never removed, and remains accessible to any users knowing the URL to do so.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.